spalencsar/nas
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

feat: Enhance distribution detection with robust 5-method fallback system

Browse Source 
- Add lib/detection.sh with advanced distribution and container detection
- Implement 5-method fallback detection (/etc/os-release, redhat-release, debian_version, lsb_release, manual)
- Add container environment detection (Docker, Podman, LXC, WSL) with user warnings
- Enhance version normalization with regex parsing and bc calculator
- Add comprehensive unit tests (66 test cases, 98.5% success rate)
- Update documentation (README, CHANGELOG, SECURITY, CONTRIBUTING)
- Improve enterprise-grade error handling and logging
- Add IPv6 and security considerations for 2025 compatibility
This commit is contained in:
Mărcziem ™
2025-10-01 23:44:48 +02:00
parent a8426842d6
commit a7fd5f806b
22 changed files with 1476 additions and 375 deletions
Download Patch File Download Diff File Expand all files Collapse all files

123
CHANGELOG.md
View File

@@ -5,6 +5,105 @@ All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
## [2.1.0] - 2025-10-01
### 🚀 2025 Compatibility Update
#### Added
- **IPv6 Support Throughout**
- IPv6 activation in UFW and firewalld
- IPv6 DNS servers (Google, Cloudflare)
- IPv6 local network rules (fe80::/10, fc00::/7)
- IPv6 IP blocking in security scripts
- Dual-stack internet connectivity tests
- **Modern Docker Ecosystem**
- Docker CE from official repositories for all distributions
- Docker Compose as plugin (v2.30.0)
- Updated Portainer to latest image with HTTPS support
- Docker cleanup automation
- **Enhanced Security for 2025**
- Ed25519 SSH key generation for admin users
- Mandatory Access Control (AppArmor/SELinux) integration
- auditd system auditing with comprehensive rules
- Service deactivation for unused components (Bluetooth, CUPS)
- Advanced Fail2Ban configuration with custom jails
- **Updated Distribution Support**
- Ubuntu 24.04+ (LTS)
- Debian 12+ (Bookworm)
- Fedora 41+
- openSUSE Leap 15.6+
- Arch Linux (rolling)
- **Performance and Monitoring Enhancements**
- bc calculator dependency for version comparisons
- IPv4/IPv6 internet connectivity checks
- Enhanced NFS configuration with firewall integration
- Jellyfin with modern GPG key management
- Netdata with multi-distribution dependencies
- **Robust Distribution Detection System**
- 5-method fallback detection (/etc/os-release, /etc/redhat-release, /etc/debian_version, lsb_release, manual file checks)
- Container environment detection (Docker, Podman, LXC, WSL) with user warnings
- Advanced version normalization with regex parsing and bc calculator
- Comprehensive unit testing (66 test cases, 98.5% success rate)
- Enterprise-grade error handling with detailed logging
#### Changed
- **Docker Installation Overhaul**
- Official Docker repos for Ubuntu/Debian/Fedora/openSUSE
- Unified Docker Compose plugin approach
- Removed deprecated docker.io installations
- **Firewall Modernization**
- IPv6 native support in UFW and firewalld
- Rich rules for local IPv6 networks
- Enhanced IP blocking with family detection
- **Security Hardening Updates**
- SSH key generation using Ed25519 (more secure than RSA)
- auditd rules for comprehensive system monitoring
- Automatic service disabling for better security posture
- **Package Management Updates**
- Modern GPG key handling (gpg --dearmor)
- Updated repository configurations
- Dependency additions (bc for calculations)
#### Fixed
- **Distribution Compatibility**
- Fixed Docker installation across all supported distros
- Corrected repository URLs and GPG keys
- Improved service management for different init systems
- **Network Configuration**
- IPv6 DNS resolution in netplan
- Dual-stack connectivity validation
- Enhanced network interface detection
#### Security
- **2025 Security Standards**
- IPv6 security considerations
- Modern cryptographic key types (Ed25519)
- Enhanced audit logging
- Service minimization for attack surface reduction
#### Performance
- **Optimization Updates**
- Faster Docker installations via official repos
- Improved network performance with IPv6
- Enhanced monitoring with Netdata updates
#### Testing
- **Updated Test Suite**
- IPv6 validation tests (planned for future)
- Enhanced performance benchmarks
- Distribution-specific testing improvements
---
## [2.0.0] - 2025-06-17
### 🚀 Major Rewrite - Enterprise-Grade Release
@@ -180,19 +279,21 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
## Version Comparison
| Feature | v1.0.0 | v2.0.0 |
|---------|--------|--------|
| Input Validation | Basic | ✅ Comprehensive |
| Error Handling | Basic | ✅ Enterprise-grade |
| Testing | None | ✅ 50+ Unit Tests |
| Rollback | None | ✅ Automatic |
| Performance | Basic | ✅ Optimized |
| Security | Basic | ✅ Enterprise-level |
| Monitoring | Basic | ✅ Advanced |
| Documentation | Basic | ✅ Professional |
| Feature | v1.0.0 | v2.0.0 | v2.1.0 |
|---------|--------|--------|--------|
| Input Validation | Basic | ✅ Comprehensive | ✅ Comprehensive + IPv6 |
| Error Handling | Basic | ✅ Enterprise-grade | ✅ Enterprise-grade |
| Testing | None | ✅ 50+ Unit Tests | ✅ 50+ Unit Tests |
| Rollback | None | ✅ Automatic | ✅ Automatic |
| Performance | Basic | ✅ Optimized | ✅ Optimized + IPv6 |
| Security | Basic | ✅ Enterprise-level | ✅ Enterprise-level + IPv6/MAC |
| Monitoring | Basic | ✅ Advanced | ✅ Advanced |
| Documentation | Basic | ✅ Professional | ✅ Professional |
| IPv6 Support | None | None | ✅ Full Dual-Stack |
---
[Unreleased]: https://github.com/spalencsar/nas/compare/v2.0.0...HEAD
[Unreleased]: https://github.com/spalencsar/nas/compare/v2.1.0...HEAD
[2.1.0]: https://github.com/spalencsar/nas/releases/tag/v2.1.0
[2.0.0]: https://github.com/spalencsar/nas/releases/tag/v2.0.0
[1.0.0]: https://github.com/spalencsar/nas/releases/tag/v1.0.0